hadoop-mapreduce-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Benoy Antony (JIRA)" <j...@apache.org>
Subject [jira] [Created] (MAPREDUCE-4553) Key Protection : Implement KeyProvider to read key from a WebService Based KeyStore
Date Mon, 13 Aug 2012 16:54:38 GMT
Benoy Antony created MAPREDUCE-4553:
---------------------------------------

             Summary: Key Protection :  Implement KeyProvider to read key from a WebService
Based KeyStore
                 Key: MAPREDUCE-4553
                 URL: https://issues.apache.org/jira/browse/MAPREDUCE-4553
             Project: Hadoop Map/Reduce
          Issue Type: Sub-task
          Components: job submission, security
            Reporter: Benoy Antony
            Assignee: Benoy Antony


Normally keys have to be stored in a central location suing custom key management system.
 organizations can implement KeyProvider to integrate their custom key management system to
Hadoop. This interface is specified in MAPREDUCE-4550

Optionally , developers can use Safe to integrate custom key management system with Hadoop.

Safe is an open source web service based keystore to securely store secret keys and passwords.

Safe authenticates the user using SPNego, checks whether the user is authorized to read the
secret and returns the secret. 
It is easy to plug in different mechanisms for authentication,authorization and Key storage.

Safe is kept as a separate open source project at (http://benoyantony.github.com/safe/)

The hadoop proxy to safe is added as a contrib project -  hadoop-safe. 


--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message